$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDD4D/660E0588D27D11ED8E9A2580C4F9AE02/1QwpV9-oQKlDD7nuJdTc-hcSnBg.mft File: 1QwpV9-oQKlDD7nuJdTc-hcSnBg.mft (raw, json) Hash identifier: QSDYoCKQz9ryceFn33WKDjW7s99q8Y4AtxYz2Inj98Q= Subject key identifier: D1:32:33:42:2C:83:BE:AC:97:5A:A9:D0:8D:88:4A:F3:CC:92:DA:89 Authority key identifier: D5:0C:29:57:DF:A8:40:A9:43:0F:B9:EE:25:D4:DC:FA:17:12:9C:18 Certificate issuer: /CN=A91FDD4D/serialNumber=D50C2957DFA840A9430FB9EE25D4DCFA17129C18 Certificate serial: 01EC Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/1QwpV9-oQKlDD7nuJdTc-hcSnBg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDD4D/660E0588D27D11ED8E9A2580C4F9AE02/1QwpV9-oQKlDD7nuJdTc-hcSnBg.mft Manifest number: 01E9 Signing time: Sat 18 Oct 2025 16:10:43 +0000 Manifest this update: Sat 18 Oct 2025 16:10:42 +0000 Manifest next update: Sat 25 Oct 2025 16:10:42 +0000 Files and hashes: 1: 1QwpV9-oQKlDD7nuJdTc-hcSnBg.crl (hash: DGfgcxjokhByFNlcVe1Rn8bIGzY5Ri/lfkP6xu1SvUU=) 2: 1046CB98D28311EDB1655152C4F9AE02.roa (hash: Kqt9mEj0giKftuB2DBO692CGsOF5kZIoQznyePkJFyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDD4D/660E0588D27D11ED8E9A2580C4F9AE02/1QwpV9-oQKlDD7nuJdTc-hcSnBg.crl rsync://rpki.apnic.net/member_repository/A91FDD4D/660E0588D27D11ED8E9A2580C4F9AE02/1QwpV9-oQKlDD7nuJdTc-hcSnBg.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/1QwpV9-oQKlDD7nuJdTc-hcSnBg.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:10:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 492 (0x1ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDD4D, serialNumber=D50C2957DFA840A9430FB9EE25D4DCFA17129C18 Validity Not Before: Oct 18 16:10:42 2025 GMT Not After : Oct 25 16:10:42 2025 GMT Subject: CN=68f3bc03-4c7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ec:1e:92:1e:57:a2:f7:01:29:e3:d5:eb:31: 45:3c:15:fe:78:09:8b:02:db:a0:91:c3:09:6c:25: b1:34:67:60:e9:70:ed:81:b8:c0:47:72:7c:90:7f: 19:c8:81:3b:b4:6f:f7:25:1b:30:fc:e4:e1:4c:2e: c5:91:4d:38:d4:d3:86:46:8d:ca:48:4d:ef:ab:f5: b6:ad:43:de:7d:b0:7a:b1:59:b9:22:59:ec:fb:d3: 2c:4d:71:b6:75:a8:35:b5:b4:ac:93:61:1b:8d:91: 2f:62:a5:38:31:16:75:6a:ea:13:b8:49:3d:29:42: c0:f8:2c:83:f2:04:c0:5b:27:a8:49:d9:9a:5f:ce: 27:26:96:7e:ef:d5:4b:26:46:a9:c3:bd:44:f8:60: d3:c5:bb:56:ad:11:dd:f6:4e:14:bb:5a:39:f8:06: 00:63:1d:b7:d2:59:77:16:58:9a:96:6e:ae:25:35: af:e7:67:37:77:25:2f:d0:81:2a:75:ff:19:51:91: 23:a6:91:3c:f1:ca:20:da:1d:5a:5c:fe:aa:ae:3e: ac:7a:20:be:73:75:ae:50:81:27:37:62:0b:16:2b: 0f:f8:ff:14:c8:ed:30:fa:41:bd:52:8f:9d:c0:c3: 7a:4a:42:d9:99:f6:c2:95:e4:58:a1:dd:2c:d8:c1: 97:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:32:33:42:2C:83:BE:AC:97:5A:A9:D0:8D:88:4A:F3:CC:92:DA:89 X509v3 Authority Key Identifier: keyid:D5:0C:29:57:DF:A8:40:A9:43:0F:B9:EE:25:D4:DC:FA:17:12:9C:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDD4D/660E0588D27D11ED8E9A2580C4F9AE02/1QwpV9-oQKlDD7nuJdTc-hcSnBg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/1QwpV9-oQKlDD7nuJdTc-hcSnBg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDD4D/660E0588D27D11ED8E9A2580C4F9AE02/1QwpV9-oQKlDD7nuJdTc-hcSnBg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:5a:35:bd:f5:cf:7c:72:88:e0:7a:d2:a0:25:eb:33:58:15: c6:82:6a:63:4d:d4:b2:93:c0:2e:91:d9:6d:d0:42:e1:01:01: e4:e4:52:1e:cc:ae:a2:87:2b:2b:51:05:db:cc:f3:11:c1:90: 5c:eb:e1:58:5d:de:34:3e:fe:d2:96:ba:10:b9:2c:27:18:29: 85:7e:c5:c9:91:eb:c8:7e:d3:d0:b2:2a:55:76:6a:9b:70:69: 0c:93:a9:df:e8:9f:20:6a:47:21:46:3e:28:a4:4e:5f:bd:b1: 88:1e:4d:7a:1d:06:34:f9:77:c3:d0:67:8f:48:cd:de:5b:3d: 82:ce:06:d2:9d:ae:e0:00:03:46:26:17:bd:8f:51:2b:17:db: 19:97:87:37:33:c2:32:c5:67:da:cc:11:40:f2:6d:e7:81:d9: ac:ec:fe:4d:1b:16:47:37:f4:52:25:09:10:65:c4:d1:69:08: ed:87:f4:a5:88:35:8d:85:81:f0:8a:19:3f:2e:f8:fc:84:64: db:d2:87:fe:f5:3f:6d:96:3e:af:0e:6e:78:99:21:cb:b0:03: 3f:11:80:ce:76:e0:45:a7:fa:5b:1c:48:73:85:bf:a7:ef:29: 8e:e7:30:81:0e:26:94:4b:20:82:54:3a:74:0c:36:13:07:64: 7c:97:ae:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRENEQxMTAvBgNVBAUTKEQ1MEMyOTU3REZBODQwQTk0MzBGQjlFRTI1RDREQ0ZB MTcxMjlDMTgwHhcNMjUxMDE4MTYxMDQyWhcNMjUxMDI1MTYxMDQyWjAYMRYwFAYD VQQDEw02OGYzYmMwMy00YzdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsewekh5XovcBKePV6zFFPBX+eAmLAtugkcMJbCWxNGdg6XDtgbjAR3J8kH8Z yIE7tG/3JRsw/OThTC7FkU041NOGRo3KSE3vq/W2rUPefbB6sVm5Ilns+9MsTXG2 dag1tbSsk2EbjZEvYqU4MRZ1auoTuEk9KULA+CyD8gTAWyeoSdmaX84nJpZ+79VL Jkapw71E+GDTxbtWrRHd9k4Uu1o5+AYAYx230ll3Flialm6uJTWv52c3dyUv0IEq df8ZUZEjppE88cog2h1aXP6qrj6seiC+c3WuUIEnN2ILFisP+P8UyO0w+kG9Uo+d wMN6SkLZmfbCleRYod0s2MGXWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNEyM0Is g76sl1qp0I2ISvPMktqJMB8GA1UdIwQYMBaAFNUMKVffqECpQw+57iXU3PoXEpwY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREQ0RC82NjBFMDU4OEQy N0QxMUVEOEU5QTI1ODBDNEY5QUUwMi8xUXdwVjktb1FLbEREN251SmRUYy1oY1Nu QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzFRd3BWOS1vUUtsREQ3bnVKZFRjLWhjU25CZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REQ0RC82NjBFMDU4OEQyN0QxMUVEOEU5QTI1ODBDNEY5QUUwMi8xUXdwVjktb1FL bEREN251SmRUYy1oY1NuQmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsWjW99c98cojgetKgJeszWBXGgmpjTdSyk8Aukdlt0ELhAQHk5FIe zK6ihysrUQXbzPMRwZBc6+FYXd40Pv7SlroQuSwnGCmFfsXJkevIftPQsipVdmqb cGkMk6nf6J8gakchRj4opE5fvbGIHk16HQY0+XfD0GePSM3eWz2CzgbSna7gAANG Jhe9j1ErF9sZl4c3M8IyxWfazBFA8m3ngdms7P5NGxZHN/RSJQkQZcTRaQjth/Sl iDWNhYHwihk/Lvj8hGTb0of+9T9tlj6vDm54mSHLsAM/EYDOduBFp/pbHEhzhb+n 7ymO5zCBDiaUSyCCVDp0DDYTB2R8l64o -----END CERTIFICATE-----Generated at Mon Oct 20 13:53:47 2025 by rpki-client